Hi!
On Fri, Jun 12, 2015 at 7:07 AM, Mark Boo mrkzm...@gmail.com wrote:
[snip]
Now my questions are:
- Is this (file injection using image mounting) likely to be deprecated at
some point in the future?
Yes, we've been building up to that for a long time and I can't see is
not doing it. Its important because file injection is much harder to
make secure. We've had security vulnerabilities around file injection
in the past, and while I don't know of any at the moment we've decided
its best just to move to the other two mechanisms.
- What functionality is missing (if any) in config drive / metadata service
solutions to completely replace file injection?
None that I am aware of. In fact, these two other options provide you
with more data than you'd get with file injection.
- Which of them is the fastest and most secure?
I don't think there's a speed difference between the two of them --
they both use the same backend to gather the data to expose. That
said, I think config drive is popular because its simple -- everyone
knows how to use a local disks.
Cheers,
Michael
--
Rackspace Australia
__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
